Topic: Automatic IP Blacklist | BulletProof Security Forum

Automatic IP Blacklist

This topic has 1 reply, 2 voices, and was last updated 5 years, 3 months ago by AITpro Admin.

Viewing 2 posts - 1 through 2 (of 2 total)

Author

Posts
January 3, 2019 at 11:21 pm #36805
Qtwix
Participant

Hi,

I just stumbled over this article:
https://perishablepress.com/automatic-ip-blacklist/

What about implementing an automatic IP blacklist into BPS Pro? Would this even be meaningful in your opinion? And what would you expect related to site performance while thousands of IP’s are being checked due to the according rules?

Cheers,
January 4, 2019 at 9:48 am #36806
AITpro Admin
Keymaster

Blocking by IP address is problematic and not efficient for many reasons. The way BPS security rules work is that they block by “bad action” instead of blocking by IP address. Example: Hacker X attacks a website with bad action Y (attack) and is blocked by BPS security rule Z. It is very common for hackers and spammers to have and use many different IP addresses. For example, we tested blocking by IP addresses many years ago and found that a group of Chinese spammers had thousands and probably millions of IP addresses that they could switch to if we blocked any of their IP addresses > https://forum.ait-pro.com/forums/topic/buddypress-spam-registration-buddypress-anti-spam-registration/
Author

Posts

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.